CessPoolCleaner

Oh and of course we would need to be able to order the files so that they are presented sensibly.

 

run the whole site as ssl and the problem is solved.

The problem is that css is not served as files they are all embedded which is a terrible thing

If you are building pages that contain various pieces of information you end up with a bunch of blocks and stuff that basically only belong to that page. As you wander along creating pages and hooks the number of hooks starts to grow pretty alarmingly. Now the issue is that hooks (and other stuff in IPC) only allow you one level of sorting and all of them appear on the navigation page. Once you have a few it becomes pretty ordinary trying to locate the one hook you need to play with.

So how about the displays show the top level with the option to open it, and see the items contained within and manage those, obviously submenus are also needed so that the stuff can reflect the same structure as the pages themselves.

And one thing that is hugely needed is the ability to clone a hook!

Thanks,
Larry

I realise you are not IBM and do not have the same resources.

• Using the dox online is a pita .. I should be able to run them locally. It is ok for you guys with adsl(ie fast) but searching/browsing through the system is sooooo tedious
• You example of a good doc page did you load it? The code sample?????? It dunna look all dat good huh!
• More than me has asked that a reasonable 'hello world' applcation be written that has all the bits there so that we can use that as a start off to what we need .. ie change the dir name to our app and we have our_app_hello_world
• Making a system IN_DEV is still broken
• Exporting an application from in_dev is (my opinion) absolute CRAP I should be able to say gimme my app and get it all packaged not have to remember to import/export the skin, import/export the language, reload hooks etc etc etc ... bad bad bad
• NEXUS! <<<< If it aint in the old source I have the I am STUCK ... at the very least make the source available to people who do stuff with Nexus as I said there are a number of things that could be added but no access leaves us in the cold ... did I mention dox?
• Searching/browsing the dox and the so called KB sux big time have a look at Q2A I have to run this on RBR as Content is totally useless when it comes to managing a KB. Add this functionality to Content and use it you will love it and so would we ... don't tell me it is already possible, if it were you would have done it already.
• Feedback .. you guys don't give us feedback when we make suggestions. It is all well and good to use one of the standard excuses that have been used but if someone makes a suggestion and it is accepted say so, if it is rejected say so ... then we have the chance of possibly explaining in more detail what it is we want/need.
• sigh I am getting worked up again just trying to go through my list...
• How about Wordpress it auto downloads its own updates, can install stuff directly off their equiv of the marketplace

Now this is not a 'I am leaving and I want to vent' it is more of 'I really like this software butt'....

A long time ago I talked my then site partner into moving from phpBB to InvisionPower the main reasons were the support and the more stable nature of the beast. Back then phpBB was stuck trying to release the next version and it was hurting our site. Then, as now, the cost was our only downside as we were basically a free site running on donations. We went to a membership model (way before Subscriptions/Nexus) and that kept our head above water. Since then as IPS released stuff we, then me when he retired from the site, have pretty much always stayed with the IPS model, when Nexus came out I dumped aMember, even though I was making serious dosh from doing support/cutom work. Eventually I even dumped Wordpress and my own software system built with cmsBuilder and moved it all over to IPS products.

On a planetary scale I am not a big customer only four licenses with add-ons in each about $350 a year in support costs so compared to a number of other clients definitely small cheese. As a developer I have never been a fan of the way applications/hooks work, mainly applications. The big whinge I have is the documentation/sample code which I believe is totally atrocious, the huge whinge is the lack of reasonable information on Nexus (as it is encoded) as mentioned I made serious money working with aMember and I would have thought I could have done all sort of nice things for people with the base of Nexus but the inablilty to get into the processing is very frustrating. I did do a DVD fulfillment addon for my site but even something as trivial as that was a right royal PITA.

Sorry guys, you keep telling us you will improve the documentation but you have said that for the last three major releases and still the documentation doesn't have reasonable examples of the API calls, even the calling information is difficult the result is needing to look at the code continually to see what to do to achieve stuff. Unfortunately there doesn't seem to be a solution as each version iteration has only kept making it harder not easier, it aint as though I am a coder in swadling maybe it is that I have gotten old and cranky but I am really frustrated and the main causes are IP.Content & IP.Nexus primarily documentation and weird behaviour. The reason I have always loved IPS is the support, top notch, absolute best practice with wonderful people but it is not enough!

As I said at the top no decision point has been reached, but I am at the tipping point. To take your breath away I am considering Expression Engine mainly because as a coder it gives me 'control' uses a template system that is easy (for me) and that I may be able to get back into development which is what I like to do.......

Yes and the same with content followed. A listing available showing stuff sorted by last update for both would be hugely helpful ... oh and the date last update shown.

It is excellent that the menu system has been enhanced but a few things

• Drag'n'Drop for submenu items to do reordering
• Move items from primary to secondary menus and vice-versa

Thanks,
Larry

Once someone gets unfettered access, then yes, naturally all bets are off. The goal is to never allow them to reach that point. That's where policy and architecture improvements have their use. As for file access, that has protections of its own you can set up if you're on a VPS or dedicated box--use SFTP rather than FTP, and consider an IP access list on top of authentication.

I am not against making things better security wise, far from it. The thing to bear in mind is that most admins are not technowiz types what would make your eyes bleed (and mine) bad practice-wise would get a shrug from most other people. That's the admins for the users, generally, it is worse it is hair pulling difficult to get people to realise that reuse of password on multiple systems is a bad idea.

Making the 'front end' forum more secure is irrelevant against bad personal practices. All I am trying to get across is that changing the db storage hash is not going to achieve all that much, whatever method is used it can be reverse engineered by brute force. Making passwords into pass phrases is an improvement but even a pass phrase like 'James Kirk is the best Captain fer sher!' is side tracked if used on multiple systems. One bad egg capturing the plain text and using them not as brute force but trying the username/password pair is all it takes to bypass the best security.

FWIW I use RoboForm, for each site I get it to generate a unique password, it keeps them for me in an encrypted file and that is the only 'password' I need to remember it then will log me in, that's my solution trying to make users security aware is like eating soup with a fork.

One thing to bear in mind with some of the security 'options' is that if the person breaks in and can run a script whether that is by ftp, or other chicanery most of the additional security is avoided anyway. SMS validation will be a barrier as they change numbers etc. Also, doing things like adding .htaccess for the admin centre is no barrier if they are able to delete the file and so on.

Once they are in and have access to the database/file information anything done front end wise becomes a bit irrelevant. Making the password length longer with a minimum, possibly with an option to expire old passwords and then trying to make sure your users don't re-use passwords across systems is the only real solution. And naturally the most important of all is that anyone with admin access must be forced to realise that they have to take password security seriously as they are the real way in fr these people most of the time.

Up until v4 aMember stored all passwords as clear text there a many thousands of installations and the act of clear text passwords in itself is not the security risk so long as access to the db is restricted. Not that I am saying we should do that!

As is available for packages support requires the ability to add ftp/acp(etc) details so that adhoc requests for assistance can have this requested if needed at the original support ticket submission.

Thanks,
Larry

We will certainly evaluate IP.Tracker in the very near future and let everyone know what our plans for it will be. The same is true for our other applications. IP.Board 3.3 is coming out very, very soon so expect a whole load of updates soon after.

I do not think any of us are trying to 'beat up' any person, we are saying to IPS enough is enough. If as you say v3.3 is now the magic number well then before even allowing any IPS staff to think or v3.4/v4 fix up the stuff. It is not just Tracker, there is the documentation, a new sample basic application to use as a model (the existing Hello World aint relevant no more) all of this stuff was raised before v3.2 and it is starting to be hugely frustrating that IPS is neglecting the non-core part continuously.

Yes and what's worse is that 'we' don't seem to have much impact on things we need. I mainly want to stick with it because it is built-in after trying a lot of others that is the killer integration.

Please Tracker is important, unlike Michael I believe that IPS should continue with it but actually develop it, I would even go so far as saying make it a paid app if necessary.

#1 I agree wholeheartly people on my site are continually complaining about not being able to find their information because it is missing from their profile.

Just wanted to drop a line to say that although I am a coder being able to access the stellar support provided by Invision saves me a lot of angst. I finally decided that running my personal site on Wordpress (et al) was just too much trouble so now all of my stuff is now running under the various parts of the software built by Invision.

Thanks guys! (oh and of course lovely Debbie)
Larry

I have a number of sites, one is for my products (which is having a holiday somewhere) the others are my Simulation, Jokes & personal sites. What I would like is that these three sites all use one instance of the chat client. By that I mean on the sim site you click 'Chat' you go to my chat area, if you click chat on either of the other two you get the same chat.

With this in place it might be worth my while to increase the number of people I can have in chat as they would all be chatting together rather than 3 separate ones.

Yes I do realise that I could make the chat link on the others bounce over to the 'main' one I could probably even have the number of people in char visible across the three but it would just seem nicer to be able to click thru from any of them and also have the number valid as well.

Thanks,
Larry